Vulnerability Details CVE-2018-0784
ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0808.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.113
EPSS Ranking 93.2%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/102377
- http://www.securitytracker.com/id/1040151
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0784
- http://www.securityfocus.com/bid/102377
- http://www.securitytracker.com/id/1040151
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0784
Products affected by CVE-2018-0784
-
cpe:2.3:a:microsoft:asp.net_core:2.0